Bug 1975272
Summary: | [RFE] [KMS] Add support for auto-detection of the Vault KV version | ||
---|---|---|---|
Product: | [Red Hat Storage] Red Hat OpenShift Data Foundation | Reporter: | Rachael <rgeorge> |
Component: | rook | Assignee: | Sébastien Han <shan> |
Status: | CLOSED ERRATA | QA Contact: | Rachael <rgeorge> |
Severity: | medium | Docs Contact: | |
Priority: | unspecified | ||
Version: | 4.8 | CC: | jefbrown, jthottan, kbg, madam, muagarwa, nthomas, ocs-bugs, odf-bz-bot, prasriva, rcyriac, shan |
Target Milestone: | --- | Keywords: | FutureFeature |
Target Release: | ODF 4.9.0 | Flags: | prasriva:
needinfo-
|
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | v4.9.0-158.ci | Doc Type: | Enhancement |
Doc Text: |
.Auto-detection of Vault's Secret Key/Value store version
With this enhancement, Vault's Secret Key/Value store version is auto-detected.
|
Story Points: | --- |
Clone Of: | Environment: | ||
Last Closed: | 2021-12-13 17:44:31 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 2011326 |
Description
Rachael
2021-06-23 11:24:37 UTC
No RFE in 4.8 atm. Rfe, reducing the severity to medium As per the discussion: https://chat.google.com/room/AAAA2G9_Elw/MMbfZrj_Vos moving the BZ to rook component. Targeting for 4.9 Thanks Rachael, the problem is "VAULT_SECRET_ENGINE" set to transit and not "kv". Jiffin, do you know why this is set this way? IIRC, the transit should be part of the object store kms connection details, NOT part of the cephcluster KMS connection details. Is this a UI bug? @Rachael in the meantime, can you force "VAULT_SECRET_ENGINE" to "kv" to validate the auto detection works? Thanks! AFAIR OCS-Op sets secret engines differently for OSD encryption and for RGW, IMO most likely a bug there. Looping Pranshu who worked on the OCS-Op related changes The latest PR needs to be backported to 4.9 Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Moderate: Red Hat OpenShift Data Foundation 4.9.0 enhancement, security, and bug fix update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2021:5086 |